The default-deny model refuses by default to execute any files, as opposed to the default-allow model.

Comodo Endpoint Security Manager comprises Comodo's firewall and its proprietary antivirus software. The protection software quarantines any software file entering a computer system unless it appears on Comodo's whitelist of files known to be harmless. System users may then choose to allow the quarantined files to install and execute.

“Comodo DDP puts control back into the hands of the computer user or administrator,” said Melih Abdulhayoglu, CEO and chief security architect of Comodo. “Default-deny protection is one of the strongest ways to guard a single laptop or desktop, or an entire network.”